remove "/lib/ nosuid" from permission hardening

Takes 1 minute to parse. No SUID binaries there by default. remount-secure mounts it with nosuid anyhow. Therefore no processing it here.
Kicksecure · Dec 20, 2019 · 6c8127e · 6c8127e
1 parent af0f074
commit 6c8127e
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/etc/permission-hardening.conf b/etc/permission-hardening.conf
@@ -22,7 +22,12 @@
 /sbin/ nosuid
 /usr/sbin/ nosuid
 /usr/local/sbin/ nosuid
-/lib/ nosuid
+
+## Takes 1 minute to parse. No SUID binaries there by default.
+## remount-secure mounts it with nosuid anyhow.
+## Therefore no processing it here.
+#/lib/ nosuid
+
 /lib32/ nosuid
 /lib64/ nosuid
 /usr/lib/ nosuid